SOE Answers Common Questions About Attack

While we all wait for the Sony Online Entertainment services to come back online following an attack on the network, SOE posted a brief FAQ today to keep players updated on the situation. While they don't provide any new details, SOE has said it will continue to post updates to the site with new information as it becomes available. 

According to the FAQ, some games and services are expected to be up and running "soon." SOE emphasizes that the services will only be restored once the network is secure. SOE spokewoman Taina Rodriguez told The San Diego Union-Tribune that the network will be shut down until Friday and possibly longer, so it certainly looks like players should remain patient during this downtime.

You can read the current FAQ after the jump. As a reminder, SOE has confirmed that hackers may have obtained personal information from SOE systems, so be wary of any phishing scams that you may receive through e-mail. SOE will be granting customers 30 days of additional time on their subscriptions, in addition to compensating them one day for each day the system is down.

During the downtime you are welcome to join us in ZAM's IRC chat. Feldon of EQ2Wire also has set up a ZAM IRC java applet that you can use.


Recent Updates - May 4, 2011

When will SOE's services be back online?

We have been working around the clock to restore operations as quickly as possible, and we expect to have some of our games and services up and running soon. However, we want to be very clear that we will only restore operations when we believe that the network is secure.

How is the SOE intrusion related to the PSN/Qriocity intrusion? Was this a second attack on SOE?

While the two systems are distinct and operated separately, given that they are both under the Sony umbrella, there is some degree of overlap in design. The attacks were similar in nature. This is NOT a second attack; new information has been discovered as part of our ongoing investigation into the criminal attack in April.

How is SOE planning to notify customers whose data may have been stolen?

We are sending out customer service notification emails to the email addresses we have on file for the accounts that were affected. These emails will be sent by Innovyx, our third party email distributor, and contained either 'soe.innovyx.net' or 'soe.sony.com' in the sender field.

SOE initially thought no data was extracted, what changed?

Essentially the perpetrators used sophisticated means not only to access the data, but also to cover their tracks. We committed to continue the investigation and in doing so, uncovered further information that we did not have when we initially believed the data was not stolen.

Comments

Post Comment
sonys downtime
# May 05 2011 at 2:46 AM Rating: Decent
22 posts
hackers went after info in a game? wouldnt billing companies like for phones or electricity or even those overcharging oil companies be more of a challenge? leave the games alone! now theres to many people to deal with in real life
sonys downtime
# May 05 2011 at 3:06 AM Rating: Decent
17 posts
If it were Anonymous they are (one would guess) not so much interested in making a profit from this as much as adding to the "punishment" they are trying to dole out on Sony for prosecuting GeoHot for his his Playstation hack.

If it is as people say, Anonymous are trying as hard as they can to hurt Sony, even to close them down.

Law suits and rage-quits are exactly what they would be trying to get the customers to do.

If it is them.

So far the only evidence it might be is they (I believe) single file called Anonymous which contained the words "We are Legion". It could be a plant, it could be one single neckbeard - hard to say as Anonymous is rather a weird group of people without any real formal organisation.
sonys downtime
# May 05 2011 at 4:55 AM Rating: Decent
ShibiLXIX wrote:
If it were Anonymous they are (one would guess) not so much interested in making a profit from this as much as adding to the "punishment" they are trying to dole out on Sony for prosecuting GeoHot for his his Playstation hack.

If it is as people say, Anonymous are trying as hard as they can to hurt Sony, even to close them down.

Law suits and rage-quits are exactly what they would be trying to get the customers to do.

If it is them.

So far the only evidence it might be is they (I believe) single file called Anonymous which contained the words "We are Legion". It could be a plant, it could be one single neckbeard - hard to say as Anonymous is rather a weird group of people without any real formal organisation.


Prime suspects, on a scale of 1 to 10 with 10 being the highest - a 12 easy. These people are nothng but thieves and should be handled that way to the full extent of the law

As far as lawsuits go - there was an interesting decision by the Supreme Court recently regarding crass action suits and contract with bind arbitration clauses in them, makes for interesting reading.
sonys downtime
# May 05 2011 at 10:30 AM Rating: Default
OK, for all of you stating you don't think Anonomous would do this, or hasn't done this, check out this video on YouTube, believed to have been posted by them.
http://www.youtube.com/watch?v=BplEYMDGH4Q
They state that this is just the beginning and that they will never give up until their demands are met, which I highly doubt Sony intends to do.
Sony implicates Anonymous
# May 05 2011 at 12:58 AM Rating: Decent
Scholar
**
269 posts
http://www.telegraph.co.uk/technology/sony/8494177/PlayStation-hack-Sony-blames-Anonymous-hacktivists.html

From The Telegraph by Christopher Williams, Technology Correspondent

Kazuo Hirai's response to U.S. Congress.

Edited, May 4th 2011 9:00pm by Adani
EQ Withdraw
# May 04 2011 at 11:31 PM Rating: Decent
Scholar
27 posts
Fellow EQ players I too feel your angst about the servers being. Yes the hackers shouldnt of hacked it, yes sony should of did a better job to protect our info and keep us informed. BUT on the bright side I found in my local drug next to the nicorette patches some EQerette patches, and they well worth the boosters packs you have to give for them. Simply apply one patch to each cheek of your **** and they give it the numbing sensation of sitting in front of the computer for hours. You eventually will no longer have the urge to get aa's, kill mobs, spend every pp you got tradeskilling so you can get a shaw with worse stats than whAT YOU ARE WEARING,POSSIBLE SIDE EFFECTS include finding out how old your family has gotten to look in last 12 years and some have even past. and that the furniture is gane and so are the wife and kids. these really seem to help, please get servers up soon sony as i bought all they had, thanks Nayloran 90 mage once or was it a dream see they do work
____________________________
85th Arch Mage of Druzzill Ro
And while the servers are down...
# May 04 2011 at 11:04 PM Rating: Decent
I will _not_ recommend hitting one's thumb with a poorly aimed swing of a hammer. Yes, like so many others I too found those several things around the house that need doing and managed to cause grievous self injury.

OK, so it isn't all that bad [talking about the server downtime now]. Cudos to the IT folks inside Sony who suspected further intrusion than was initially evident. Had it not been for those whose noses sniffed this out in the first place the damage may very likely have been far worse than a week on the wagon <jonesing for our fantastic reality escape>.

I've gotten my emails from Sony (2 accounts), already handled business with the cc company and have my left thumb wrapped in an icepack.

Life will return to normal or some reasonable facsimile.

Formerly Dwarkin, 80 Hunter
Reginold, 80 Tankadin
Zethi, 80 Arcane/Frost Mage of Blackhand (Warcraft)
Presently Zehji, 35 Wizard
& others (sub 20) of The Seventh Hammer (EQ)
Why ?
# May 04 2011 at 11:02 PM Rating: Default
Ok the info has already been stolen blah blah blah!!! Why take the game servers down and kill themselfs by doing it run they servers and fix the problem at the same time not like they are doing anything to help themselfs by killing what business they have left!
Everyone knows to watch there Credit Cards already
Why ?
# May 05 2011 at 12:58 AM Rating: Good
They took it down so EVERYONE does not get financially raped *** tool. Are you seriously jonesing this bad over a video game?
Why ?
# May 04 2011 at 11:58 PM Rating: Decent
17 posts
Do you want a repeat of what happened at 2am on May 1 when people started being flagged as children whilst in the game and finding things like their station cash zeroed out and their characters logged out?

Imagine if the now changed GM password is again stolen de-hashed using a simple rainbow table search. Would you like your toon deleted and account perma-banned by some hacker just for a laugh?

Your very characters and all they have on them would be at risk unless SOE properly lock down the servers so that this can't be repeated.

There is a good reason the game will stay down until the problem is fully fixed (think weeks) and that is to make sure it doesn't get any worse than it already is.
Already seeing Stolen info??
# May 04 2011 at 10:43 PM Rating: Decent
*
136 posts
OK really.. I am pretty sure that the people posting that they have already seen activity.. well considering that the information that was stolen was from servers that would not have any active cards and that they have already posted that the Credit card servers were NOT hit.. I would suggest to stop buying from plat farmers and you will stop the ID theft... OK... idiots.
Already seeing Stolen info??
# May 04 2011 at 11:51 PM Rating: Decent
17 posts
Please understand that just 2 weeks SOE said on the forums when asked about the PSN breach that there is no way that SOE would be affected that PSN and SOE were on different hardware.

Now we find that assurance was fake and now saying that our account information and creditcard information are on different systems. Is it not feasible that Sony don't really know yet?

After all, if you ever try to buy station cash inside the game it CAN AND DOES pop up a box that has your credit card number filled in for you by the game client, in other words, the creditcard database is easily accessable from the internet.

Now in relation to the 2007 file of credit cards and bank accounts, not all of those have expired, bank accounts never expire.

Don't be so certain when blaming people as Plat Buyers. At this time the full damage IS NOT known. Until it is and until Sony release the full amount of stolen information to each individual record holder (including all those with real and genuine stolen credit cards in the 2007 file) we just won't know.

I still have not received my letter, but I have canceled my card and reported the data theft to the local police as suggested by the privacy commissioner of the non-USA country I live in. They are very concerned about this failure of Sony to protect the information and are considering taking action - at the government level - of the company.
Already seeing Stolen info??
# May 05 2011 at 1:48 AM Rating: Decent
Scholar
*
131 posts
Quote:
Now we find that assurance was fake and now saying that our account information and creditcard information are on different systems. Is it not feasible that Sony don't really know yet?


this is exactly why no NEW information is forthcoming until its been thoroughly examined. They thought they had the problem figured out , but further investigation proved them wrong. They are, after all , human =P

And look at the WONDERFUL response their early news release got

Quote:
I still have not received my letter, but I have canceled my card and reported the data theft to the local police as suggested by the privacy commissioner of the non-USA country I live in. They are very concerned about this failure of Sony to protect the information and are considering taking action - at the government level - of the company.

personally I believe this is folly. The lawsuits and such are punishing the victim for being a victim. Its equivalent to putting a rape victims on trail because they were wearing provocative clothing.

A crime was commited.
SOE is the VICTIM , as well as ALL its customers.

Putting the VICTIM on trial will NOT make the problem go away

Putting the VICTIM on trial WILL slow down recovery A LOT.
Already seeing Stolen info??
# May 05 2011 at 2:53 AM Rating: Decent
17 posts
There are no law suits from my country. There is however a government investigation, just like the USA is doing it's government investigation.

Any tard who decides to sue over this is just making the lawyers rich.

Please don't get me wrong, I fully blame the hackers here and I hope the USA's FBI is soon knocking on their doors however now the horse has bolted I will do exactly what I need to do to protect myself.

In America that is cancelling your cards and placing a fraud note on your credit file, in my country it is cancelling your card and reporting it to the police.

I wish Sony all the speed they can to fix this and make it tighter than a drum, I throw scorn at people who blame plat buyers like the answer to my original post above because quite simply at this stage we don't know.

I'm not willing to risk my wellbeing enough to just go "ah, it won't bother me, it only affects plat buyers"

Edited, May 5th 2011 5:15am by ShibiLXIX
Already seeing Stolen info??
# May 05 2011 at 11:48 AM Rating: Decent
*
136 posts
I still say that if these whack jobs who are trying to sue SOE affect the games we play and somehow cause them to close the servers permenetly then we as the players should file a lawsuit on the lawyers and the people who sue and take back the 10+ years they cause to be lost.
Already seeing Stolen info??
# May 05 2011 at 1:02 AM Rating: Default
L2R b4 you cry boo hoo. They said the attack was very sophisticated and at first the deeper attack went unnoticed.
Already seeing Stolen info??
# May 05 2011 at 2:57 AM Rating: Good
17 posts
Maybe you should learn to read as well?

Look at my post now look at the one above it. Now look at your post. Now back to mine. Don't you wish your post wasn't looking so stupid now?

What's that in your hand?
Why yes it is! Didn't your mother tell you that it will make you blind?

Edited, May 5th 2011 4:57am by ShibiLXIX
Surprised? No.
# May 04 2011 at 10:28 PM Rating: Decent
"Soon" or "ASAP" is not an acceptable answer under any circumstances. It was not when I was supporting servers, and it is not today.

Not answering as to when the servers will be back up IS NOT OK. Giving an answer like "Soon" or "ASAP" is arrogant and shows no respect for the people who pay your bills.

Say that to your boss the next time he or she wants to know how soon you will be done with a project or assignment. Hear that Sony Employees? It's OK to be arrogant to your superiors. We are their superiors and they are doing it to us, so you now have their bosses permission to do it to them.

I honestly don't know why I am surprised at their arrogance. They have successfully managed to mis-manage one of the best MMORPG's in the world. Laying off so many people that there is not even one available to handle in-game petitions at odd hours.

Not having staff on over the weekends to assist people with hacked or compromised accounts to limit damage.

A little communication every few hours is not to much to ask. If you can't take one person away 5 mins every hour or two to give people who have already paid a little attention, then you do not have enough people working on the issue.

Edited, May 5th 2011 12:41am by spacklewoof
Surprised? No.
# May 05 2011 at 5:06 PM Rating: Decent
20 posts
Ive got an idea, how about we act like an adult and be patient- not like a 4 year old who had their toy taken away. You have no clue how long this process takes or what they have to do.
Surprised? No.
# May 05 2011 at 5:10 AM Rating: Decent
spacklewoof wrote:
"Soon" or "ASAP" is not an acceptable answer under any circumstances. It was not when I was supporting servers, and it is not today.

Not answering as to when the servers will be back up IS NOT OK. Giving an answer like "Soon" or "ASAP" is arrogant and shows no respect for the people who pay your bills.

Say that to your boss the next time he or she wants to know how soon you will be done with a project or assignment. Hear that Sony Employees? It's OK to be arrogant to your superiors. We are their superiors and they are doing it to us, so you now have their bosses permission to do it to them.

I honestly don't know why I am surprised at their arrogance. They have successfully managed to mis-manage one of the best MMORPG's in the world. Laying off so many people that there is not even one available to handle in-game petitions at odd hours.

Not having staff on over the weekends to assist people with hacked or compromised accounts to limit damage.

A little communication every few hours is not to much to ask. If you can't take one person away 5 mins every hour or two to give people who have already paid a little attention, then you do not have enough people working on the issue.

Edited, May 5th 2011 12:41am by spacklewoof



first off their network operations is manned constantly. Have reiceved support for petitions with no isse, in one case with a lost key mob in ascent the gm responded before we finished brother bob - at 3:00 AM in the morning.

Tracking down intrusion by thieves into a system takes a specialized knowledge and a lot of time to go theough the network records, data base logs, event logs and tie everythng together. Having someone post the same thing ad nauseum ever hour is counter productive and would infuriate a lot of the people even more, they CAN"T GIVE AN ANSWER TO WHEN THE SERVER"S WILL BE BACK UP BECAYSE THEY DO NOT HAVE INFORMATION ON THE FULL EXTEND OF THE ATTACK BY THE LOWLIFE THIEVES YET.

You may not care that they may not have found all the hooks that the thieves may have left behind or all the tracks of what they stole - but sensible people do care. Personally have no issue with them keeping things down until the 3rd parrty security consultants give the all clear, would love to see it coincide with the FBI issuing a report that the theives responsbile have been arrested.

As far as communications go

https://www.soe.com/securityupdate/index.vm
Surprised? No.
# May 05 2011 at 1:23 AM Rating: Decent
Scholar
*
131 posts
Quote:

A little communication every few hours is not to much to ask. If you can't take one person away 5 mins every hour or two to give people who have already paid a little attention, then you do not have enough people working on the issue.

you are aware that ANYTHING that SoE says or does currently is under Federal scrutiny? That anything made outside strict internal channels will be VERY STRINGENTLY moderated , supervised , and edited?

You are also aware that , until they have concluded or reach a stage that SoE feels comfortable turning things back on , they LITERALLY CAN NOT give an ETA on something when they are still finding out what they need to do , how to do it , and if they did it right?

They VERY BEST and MOST ACCURATE answer that they can reasonably and rationally can give is " soon " and that is about it. Expecting and or demanding anything more only hinders/slows down the repair process. ( Ask anyone whose boss demands hourly 10+ page updates =P )

try looking at things from their point of view before deciding they aren't doing things right.
Surprised? No.
# May 05 2011 at 8:14 AM Rating: Decent
Mazeron wrote:
[quote]
A
They VERY BEST and MOST ACCURATE answer that they can reasonably and rationally can give is " soon " and that is about it. Expecting and or demanding anything more only hinders/slows down the repair process. ( Ask anyone whose boss demands hourly 10+ page updates =P )

try looking at things from their point of view before deciding they aren't doing things right.


No one's asking for hourly 10+ page updates, either. Two or perhaps three times a day, or whenever the situation warrants, an update to their customers on the progress being made. We don't need the gory bloody details, but "soon (tm)", got old five years ago.

Soon is neither accurate, or best, and I can guarantee they're not using 'soon' internally either.


Edited, May 5th 2011 10:15am by DngrMse
Surprised? No.
# May 05 2011 at 10:17 AM Rating: Decent
Scholar
*
131 posts
Quote:
No one's asking for hourly 10+ page updates, either. Two or perhaps three times a day, or whenever the situation warrants, an update to their customers on the progress being made. We don't need the gory bloody details, but "soon (tm)", got old five years ago


2-3 times a day , its the same as asking for a 10 page report every hour. Especially if there is NOTHING TO REPORT YET.

It means taking time to have meetings , collect and distill updates and information , comprise said report , have legal review , make changes , get approval , and recall this is an international company so I am sure it is further hampered with having to run all public information through the home office.... starting the process ALL OVER again.

All to basically say " its not fixed yet but we are still working on it"

it is NOT WORTH updating hourly( IE your 2-3 times daily )

Quote:
Soon is neither accurate, or best, and I can guarantee they're not using 'soon' internally either.


Soon is exactly the best and most accurate, since literally NO ONE can predict the length of time it will take to finish the investigation , decide what to fix , how to fix it , and then do the work of fixing it , then verifying the fix took.

If they post ANY kind of ETA , people will , unreasonably , hold them to it. This is not something you can predict , this is something that you simply do , and inform people as certain steps are reached.

Try making accurate , gonna be used in court ETA announcements about terraforming the moon , and you will start to glimmer what your asking
Surprised? No.
# May 05 2011 at 1:06 AM Rating: Decent
They do not know becuase they do not know. It is very acceptable. They just suffered a major attack and every disgruntled gamer tool is trying to sue them. They have turtled up full defensive and are preparing to ward the big pull. Their is no current ACT reading yet if you can comprehend that. this is a world first pull for SOE. They don't know so they are going to ward and read the damage meter and progress from there. Perhaps you have been buying your raid strats too long to figure out how to do it properly?
Surprised? No.
# May 05 2011 at 12:14 PM Rating: Decent
If you don't know, then you don't know and you SWAG it. Two weeks is a SWAG and probably well based in reality. It would go a long way to helping customer relations, but they just wont say it. "SWAG" for those who may be unfamiliar is an acronym for "Scientific Wild *** Guess".

Nobody dared address my comment about telling a boss or spouse "ASAP" or "soon" because you all know how unacceptably arrogant it really is, and what kind of trouble that kind of an answer gets you into. It's simply wrong.

And no, the servers are not manned constantly. Otherwise, I would not hear from guild members over and over and over again "Yeah, but I got to wait until <tomorrow/monday> when staff gets back in before they can do anything about my <hacked account/stolen password/gear recovery/quest bug/etc...>." from my guild members.

And as for your statements for updates. LOL what a joke. that page has not been updated by the arrogant fools since this debacle started. It will probably remain there forever too.

And for the record, asking for an update once every one to two hours is not like spending 10+ hours writing a report for nothing. Unless you are a very poor writer. Heck, they could even dictate it to a PFY an have them post it on the website. They are to arrogant however, to even put that much effort forth.
Surprised? No.
# May 05 2011 at 5:08 PM Rating: Decent
20 posts
OK so they tell you it is going to be 2 weeks til this can be resolved and servers are back up.. you will still be on here moaning and complaining..but its no surprise, these people are actually working hard to address this situation.. what do u do besides spend countless hours clicking to see if servers are up cause you are obsessed with a game, or adding your ignorant opinion that no one cares about? :)
what i would love
# May 04 2011 at 10:00 PM Rating: Decent
you know what i would love, either 2 x18 half hour potion for every day its down, taking into account that i sleep for 6 hours or so. or 2 24x exp pots that are half hour

or even and hour long 18x or 24x exp pot.

as it stands ill play the game regardless, weather that means i put in a credit card again or mover to point cards. giving me extra time isn't exactly benefiting me.

however i know several people in game who could be dead by the time that eq comes back up, due to sickness. they chose to live out the rest of their lives more or less online.

giveing us pots to simulate a 18-24 hour period of time, would probably be the best option. if eq wasn't down right now, id be spending my time grinding out 50-100aa every day as it stands. giving my, and their account a simulated day, would be the best option.

just my two cents, and dont think im coming from this as an i care more about the game than my credit position, i already have protection from id theft, its about time that me paying 10$ a month to them for it pays off.
update?
# May 04 2011 at 8:44 PM Rating: Decent
is this the only place to get an update on the situation? since sony cant even put their website up for us
update?
# May 05 2011 at 10:32 PM Rating: Decent
Scholar
Avatar
***
1,074 posts
I don't think there will be many updates. After all, they are fighting an invasion. Not exactly a play by play kind of game.
____________________________
After 16 years, I'm not listing every friggin character.
To their Credit
# May 04 2011 at 8:37 PM Rating: Decent

Score:
Decent

Quote:
i have learnt that american customers have recieved letters explaining what has happend nothing like that for uk customeres im currently loading lord of the rings im disgusted with you sony so im a brit just a second class citizen to your us customeres (i dont mean no disrispect to my fellow eq players across the pond )








4 posts
Score: Decent


Quote:
I am also an American customer. I hold 3 EQ accounts and received nothing on any of them. Friend of mine in Star Wars Galaxy recieved his notice the day of the servers coming down --shrugs--


Look how many people hold accounts with Sony. Im sure everyone will be notified, it takes time .

Edited, May 4th 2011 10:38pm by aaeamilie
new news
# May 04 2011 at 8:24 PM Rating: Decent
This is interesting.

http://www.tomsguide.com/us/Anonymous-PSN-SOE-Hack-Congress-Response,news-11079.html

Also, some other sites are stating what other games are getting for the downtime. I know they already stated we'll be getting 30 days plus additional days for it being down. But what would you all like to see for us being loyal customers?

Id like to see some free xp potions or some free station cash. Kind of tired so cant really think of much else.
new news
# May 04 2011 at 9:36 PM Rating: Decent
Scholar
**
346 posts
No more double xp on the TLP server?
visa info
# May 04 2011 at 7:49 PM Rating: Decent
Just a heads up, don't want to worry anyone but my visa called me the other day to inform me that it has been used all over the internet from buying a airline ticket to netflix. In any case they cancelled the card but am not sure if they got my number from my sony account or where as I did use it in a few other places. In any case, I'm not writing to scare you all but I would notify your credit card company or it might just be simple to get a new one issue'd.
visa info
# May 04 2011 at 9:38 PM Rating: Decent
Scholar
**
346 posts
Ive been checking my cc activity every day since this started.
visa info
# May 04 2011 at 8:14 PM Rating: Decent
Whoa, scary.
Zek Population
# May 04 2011 at 7:44 PM Rating: Decent
I've been PvP since I started playing EQ back in 2000, and while it hasn't always been easy, it's certainly been fun. Even before this happened Zek's population was on the verg of being unsustainable, with one guild monopolizing HoT. With the certain loss of players this will bring. Will Zek survive? SAVE ZEK. Whats the point in getting powerful if you can't kill other players? We need Transfers. Diehard OWNS you!!
Thanks allah
# May 04 2011 at 7:24 PM Rating: Good
I just want to thank Allakhazam for posting all the news and linking in the the extra articles.

Nicely done and very convenient.
The Sun
# May 04 2011 at 6:29 PM Rating: Decent
Avatar
*
157 posts
Boy, I sure hope they get it fixed soon. I'm starting to loose weight. However, on the plus side I heard about this thing they call the sun. I went outside to look at it and it was cool. So, I did it again and again and again. I discovered after a couple days outside with this thing they call the sun that people no longer want to drive a stake through my heart. They did throw vegetables at me though when I stripped down to my Speedo.
____________________________
"Is it just me or did that dragon just look at us funny?"
The Sun
# May 05 2011 at 12:22 PM Rating: Decent
This post is winning.
The Sun
# May 04 2011 at 7:29 PM Rating: Decent
Thought i was the only one alittle iffy about that fireball in the sky thingie :D
Seriously
# May 04 2011 at 5:54 PM Rating: Excellent
**
710 posts
Some people seem to be acting like upgrading the security server is as easy as buying a new version of Norton anti-virus and installing it.

For people who are suggesting security patches - who's going to code those? Then they need to be tested to make sure they're not only secure, but compatible with existing appliations.

It's not just the security of the game, it's the security of their server and data infrastructure.
People???
# May 04 2011 at 5:42 PM Rating: Good
22 posts
Some of you act like SOE asked to have this happen. It is all SOE fault. I been playing since 1999, I didn't ask for it ether. Be mad at the hackers people.. What is wrong with you. and people are not going to leave and play some stupid other game after spending years on this game. Think some of you need to grow up. Let SOE do what they have to do and we will be happy when it is fixed. And anyone that leaves the game, BYE, more room for those of us that enjoy Everquest. And wont have to listen to you ***** in-game when it comes back up. Some people just are not happy if they are not causing trouble just(like the Hackers) or complaining.

Do your thing SOE, I will be playing for the next 12 years...
People???
# May 06 2011 at 11:57 AM Rating: Decent
seriously I am angry at both the hackers and soe. the hackers are criminals, and should suffer the longest punishment allowed by law imo. Where as we have soe, which knew there networks werent secure yet continued to allow us customers to believe everything was great, as long as we did our part and changed passwords here and there. So both imo have wronged us. I miss the game and my long time friends. But more so I am worried about idenity theft now. Once that happens to u, you are in deep ****! And almost impossible to get good credit etc.. so lets hope these hackers, were just after some stupid game dispute, and arent the type to use the data they have stolen.
People???
# May 05 2011 at 3:56 PM Rating: Decent
Sony's original claim that the attacks were focused on obtaining it's users personal information seems to me like an effort to garner sympathy and understanding from it's customers. I don't think Sony really knows for sure what was taken and could have just as easily reported that "Hackers could have possibly stolen tens of thousands of copyrighted images of artwork" off the same justification that if they had access to it, then they could have stolen it. I may have to eat my words later, but I have yet to hear of one single credible instance of anyone's identity or financial information being exploited as a result of the attack. Sony chairman Kazuo Hirai said:

Quote:
"Just weeks before, several Sony companies had been the target of a large-scale, coordinated, denial of service attack by the group called Anonymous," wrote Hirai. "The attacks were coordinated against Sony as a protest against Sony for exercising its rights in a civil action in the United States District Court in San Francisco against a hacker."


"As a protest" Hirai hits the nail right on the head. Big multi billion dollar company "exercises its rights in a civil action" against who? A teenager who customized his PS3? As long as my bank account remains untouched and I don't I start receiving bills for the new BMW I did not buy, I remain convinced that Sony brought this upon themselves when it abused our courts with it's million dollar team of lawyers to go after a kid.
What a bunch of idiots
# May 04 2011 at 5:24 PM Rating: Decent
*
136 posts
I really get agrivated at all these idiots who are posting that people are going to leave behind 10+ years of their life all because the game is down 3 or 4 days..come on.. dont be stupid, maby 1 or 2 will leave but no one is seriously going to leave.... The only thing that even remotly bothers me about this whole situation is the idiots that are creating class action law suits.. if someone actually causes the downfall of SOE and EQ I will personally sue them for the 12+ years of my life that they ruined...
What a bunch of idiots
# May 04 2011 at 6:15 PM Rating: Decent
*
60 posts
People will leave the game over this, that is a given. For the most part, the people that will leave will be the ones that were going to do so soon, anyway. This will be a trigger event, not a defining event. This won't take a generally satisfied individual and make them quit. There will also be some that quit because they are so angry they can't think straight. Most of those will return.

As to what the number of permanent losses will be: how many were considering quitting prior to this? /shrug

What a bunch of idiots
# May 04 2011 at 11:04 PM Rating: Decent
Bariag wrote:
People will leave the game over this, that is a given. For the most part, the people that will leave will be the ones that were going to do so soon, anyway. This will be a trigger event, not a defining event. This won't take a generally satisfied individual and make them quit. There will also be some that quit because they are so angry they can't think straight. Most of those will return.

As to what the number of permanent losses will be: how many were considering quitting prior to this? /shrug



people are leaveing for 2 reasons.

1) sony seams as about incompetent as possible with online information because of this.
2) they need a fix, and are going to other games to get it, and my like those games more.

no one is seriously leaving over downtime, they are leaving because they found something better in the down time, or major security freaks who wont come back becuase of the 100mill + accounts leaked (psn and soe, raw accounts, not counting dummies and multiple form same person)

sorry if this doesnt reply right, im new to posting here even if my account is old.
What a bunch of idiots
# May 05 2011 at 2:28 PM Rating: Decent
20 posts
People will be back as soon as its announced that servers are back up. They can threaten to quit all they want.
What a bunch of idiots
# May 04 2011 at 10:05 PM Rating: Decent
Avatar
**
309 posts
Bariag wrote:
People will leave the game over this, that is a given. For the most part, the people that will leave will be the ones that were going to do so soon, anyway. This will be a trigger event, not a defining event. This won't take a generally satisfied individual and make them quit. There will also be some that quit because they are so angry they can't think straight. Most of those will return.

As to what the number of permanent losses will be: how many were considering quitting prior to this? /shrug



Stop that. You're making sense and using logic. This is the internets, idiot. No thinking allowed.
???
# May 04 2011 at 5:01 PM Rating: Decent
What makes u think that everyone will be coming back to eq when all is said and done. Some folks will be off now with WOW or Rift or some other game.
???
# May 04 2011 at 7:32 PM Rating: Decent
Hehe.. The people leaving to play WoW again, IF they are patient enought to wait for the 7.8GB patch may wind up finding that thier account was hacked, stripped and permanently banned..
Esp if they made the mistake of using some of the common 3rd party software for raid events in the past.
???
# May 04 2011 at 10:41 PM Rating: Decent
*
136 posts
Yeah its so easy to give up on 10+ years of EQ.... come on people.. those who are still playing EQ are not going to quit EQ unless either the world ends or the servers are brought offline forever.. whichever comes first.. this event will not hurt EQ, SOE will get the servers back online and will do it when the all clear is given by the FBI that its ok to go back online.. They are tracking these guys down if they havent alreay caught them.. its an ongoing investigation they cant release that info anyway.. we will get back into the game.. and we will get some free days for the inconvieninece and thats all it is... no big deal......
OooooO
# May 04 2011 at 4:04 PM Rating: Decent
For the love of Gods, I neeeeeeeeed to plaaaaaaay!!! I don't care if they want I will give them my bank account information, just open up the servers.. They did this on purpose to boost Rift membership ;P

Edited, May 4th 2011 6:06pm by JinosTheGenerous

Edited, May 4th 2011 6:11pm by JinosTheGenerous
OooooO
# May 04 2011 at 5:58 PM Rating: Decent
16 posts
Me too! I think I've developed a small twitch in my mouse wrist!! I think I even had a dream last night I was raiding HoT!!! Is this normal??
OooooO
# May 04 2011 at 4:28 PM Rating: Decent
JinosTheGenerous wrote:
For the love of Gods, I neeeeeeeeed to plaaaaaaay!!! I don't care if they want I will give them my bank account information, just open up the servers.. They did this on purpose to boost Rift membership ;P

Edited, May 4th 2011 6:06pm by JinosTheGenerous

Edited, May 4th 2011 6:11pm by JinosTheGenerous


I'll second that, this is starting to get ugly. Just put out some patch to hinder further exploits temporarily and let us play in the mean time ffs!
Nice Work Allakhazam
# May 04 2011 at 2:55 PM Rating: Decent
This whole debacle has been quite intriguing on several different levels, I've enjoyed following it so far. I'm very much interested to see how it continues to develop, as well as what the ramifications are for all parties involved, which clearly is a lot of parties!

It seems to me that the ZAM team has done a very good job of keeping their users updated with the best and most current information available, and I must commend them on their efforts...Well Done ZAM, keep up the good work!

I'm compelled to interject an opinion for the rest of the crowd to reflect upon:

Investing your life in any one singular endeavor is a poor strategy. If for whatever reason you are suddenly no longer able to pursue that one venture, you will likely have a difficult time coping. Everything in moderation. Diversify your life and you will ultimately be happier in the end.

Cheers, and Good Luck!
Nice Work Allakhazam
# May 04 2011 at 6:07 PM Rating: Decent
Starcraft 2 has been getting alot of my attention while EQ is down.

Normally on weekends I have a friend over and we group up and do missions in HoT...

If EQ is still down this weekend, we are going old school...AOE 2 (that's Age Of Empires 2, for you youngins...). Mmmm...Elephant stampede...

Do what you need to do Sony, we got things do entertain us until it's done, and done right.
Nice Work Allakhazam
# May 04 2011 at 6:05 PM Rating: Decent
Bah...double post...

Edited, May 5th 2011 12:09am by Torelian
Nice Work Allakhazam
# May 04 2011 at 3:06 PM Rating: Decent
Pretty funny $hit.
answer me one question
# May 04 2011 at 2:13 PM Rating: Default
Avatar
10 posts
ok SOE answer me this. While I understanding having to bring down the systems with the cc info. Why did you have to bring down the game servers? How hard would it have been to do a quick reprogram of the login servers to let accounts to still be logged in with out checking for account status. You would have alot less people mad at you. And you can't tell me you IT people can do a simple thing like that.
answer me one question
# May 04 2011 at 2:46 PM Rating: Decent
Security breach is a very serious and SOE will be settling lot of lawsuits and pay the fines. It is not SOE not wanting to open up the servers. It is all those regulations put in place by government to "protect" the people. Other words, They (government) are trying to protect people's privacy by creating laws and enforcing them. SOE is just going through processes what need to be done in order to satisfy those regulations and minimize the fines and minimum settlement amounts. They have to do this in order to save money not because they don't know how or want to fix it. While security firms checking out everything in the network, they will be taking sweet time and milking the billable hours. At the end of the day, SOE will spend lot of money on additional security and to lawyers. SOE will then try to recoup the money from Evercrack addicts. One good thing is they know they can counting on milking the money from EQ addicts.

SOE is clueless on customer service and long term strategy. What they should have done is making sure moderate addicts are informed of events and communicate more on what is to come. Well, I am seeing more and more people in Rift now for past 3 days. Hard core EQ addicts will continue to play and worship SOE until SOE pulls the plug. For me, since they coneveniently renewed my 6 month subscription right before shutting the network, so I am stuck with EQ for another 7 months. Oh well.
answer me one question
# May 04 2011 at 2:43 PM Rating: Decent
*
60 posts
More than just the login functions would need a "quick reprogram". Have you never noticed how flakey the game gets when they bring down the accounting servers for maintenance? These various systems have more ties with each other than just the login server.

The game would be almost unplayable.


Edited, May 4th 2011 4:48pm by Bariag
answer me one question
# May 04 2011 at 2:35 PM Rating: Decent
The login servers are what is brought down via SOE, you must login before you connect to the Game servers so thats why you can't play.
answer me one question
# May 04 2011 at 2:47 PM Rating: Decent
Avatar
10 posts
so what you are saying is that the servers that hold the cc info and the log on servers are the same. OK I though the servers that would hold all the CC info would be serprate form the login servers and that the login servers just checked with the servers with the CC info to make sure you account is still good then conected you with the game servers.
answer me one question
# May 04 2011 at 4:01 PM Rating: Decent
Without knowing exactly how there network is setup, it is hard to speculate on what the configuration is, but more than likely they have several databases with information in them and each of these is more than likely tied together. The login server pulls information from these databases to authenticate the user information.

In other words, all of these servers are interconnected and they have had to take down the database servers that hold our (the users) information. No one can login as long as those servers are down. It is my understanding that the actual game servers are fine, it was the administrative servers that were attacked and thusly made the games we play inaccessible. It would take longer for SOE to build a new server and try to pull the data out of there existing databases to allow the customers to login and play. If they did try this, it would take members of the team away from fixing the security issues.

This is not a simple issue to resolve, depending on how badly the security was compromised.

As for the hackers that did this, there are warehouses in countries like China and Korea filled with hackers trying to break into US sites 24 hours a day. Some of these hacker sites are funded by the government of there particular country.

The only thing we can do is try to be patient while SOE fixes these problems so there are no further service disruptions. I know this is frustrating for everyone, but from someone that has been in the shoes of the IT folk at SOE, they want to get this problem fixed as badly as or worse than we do. I would not be surprised if some of the IT people there are not looking for new jobs in the very near future.

Edited, May 4th 2011 5:39pm by wdhaun
answer me one question
# May 04 2011 at 3:43 PM Rating: Decent
There generally two Servers you interact with. 1. is the Login and accounting 2. Game production service.

They will not work either out the other running, you MUST login to 1. before you can enjoy 2.
answer me one question
# May 04 2011 at 3:43 PM Rating: Decent
strongbus wrote:
so what you are saying is that the servers that hold the cc info and the log on servers are the same. OK I though the servers that would hold all the CC info would be serprate form the login servers and that the login servers just checked with the servers with the CC info to make sure you account is still good then conected you with the game servers.


They are seperate, but the code to validate the logon is imbedded in the system, you can just flip a bit and tell it not to validate
Hmmmm.
# May 04 2011 at 1:55 PM Rating: Decent
Im not worried, have not received any notification if my personal information was leaked. My bank is aware of the situation and has flagged my account to look for any additional purchases that are not to what my usual spending pattern is, they will notify me right away if there is.

Think I will load up on Station Cash cards for future renewals for a bit to let the air clear, cant wait for the free month of service and whatever days I have for being out of service.

I hope the EQ dev team is taking the time to fix any bugs while there down, this is the time to do it!
Hmmmm.
# May 04 2011 at 7:05 PM Rating: Decent
I agree totally! Plane and simple.
Hmmmm.
# May 04 2011 at 3:29 PM Rating: Decent
*
60 posts
Actually, this is the wrong time to do it.

As long as the games are unavailable, SOE will be bleeding money. Adding a game patch into this would only delay reopening the servers by at least a day (and possibly more) and that is assuming they had one ready to go prior to shutting down the servers.


It is more likely that we will NOT see a game patch this month than them slipstreaming one in with the security update. Even if their is a patch this month, it will be delayed by at least a week or (more probable) two. In all likelyhood any patches we do see this month will be additional security patches and/or performance patches that become required by the security updates that are occuring now.

Edited, May 4th 2011 5:34pm by Bariag
Hmmmm.
# May 04 2011 at 3:48 PM Rating: Decent
Bariag wrote:
Actually, this is the wrong time to do it.

As long as the games are unavailable, SOE will be bleeding money. Adding a game patch into this would only delay reopening the servers by at least a day (and possibly more) and that is assuming they had one ready to go prior to shutting down the servers.


It is more likely that we will NOT see a game patch this month than them slipstreaming one in with the security update. Even if their is a patch this month, it will be delayed by at least a week or (more probable) two. In all likelyhood any patches we do see this month will be additional security patches and/or performance patches that become required by the security updates that are occuring now.

Edited, May 4th 2011 5:34pm by Bariag



remember the patch you are tlaking about not happening will aslo be GU 60, that was scheduled to come out 05/17. Wil be interesting to see the reaction when theplayers realize that will be delayed also
Hmmmm.
# May 04 2011 at 5:35 PM Rating: Decent
*
60 posts
Heh, I will admit it. I have no idea what GU 60 is.

Everyone has to remember that it isn't just one game that is affected, it is ALL SOE games that are unavailable.

It would be reasonable to assume that the patch cycle is similar across games. What this means is that somewhere around 7 to 10 days before a patch, a code lock will occur. This is the point where QA gets their hands on the patch and attempts to break it. This is also the point where nothing new will be added to a patch. If the code isn't ready for QA prior to code lock, it won't go into the patch. Code lock for a 5/17 patch would be due in the next few days.

It is almost a certainty that no developer has touched any of the code they were working on since the servers went down. If anyone came up to their boss and announce they were done with the patch, the best they could expect would be that all the other developers working on the security issue would beat him/her to death with their keyboards.

But for the moment lets assume SOE went into code lock last Friday and QA had the changes to test. QA would not be testing them. Right now SOE is making changes to it's infrastructure. These changes have to be tested to made sure they do not impact game play in some unacceptable manner. The ONLY thing QA is doing right now is ensuring the game (AS IT WAS) continues to function with the new security.

Nobody is likely to return to standard maintenance routines when the games are made available to us again. They will need to watch the systems for signs of stress that could impact gameplay. So it will be a couple of days, at least, AFTER we players are let back in before a normal routine is re-established. (This is, of course, discounting the obligatory Happy Hour, if everything runs smoothly after server up.)


Edited, May 4th 2011 8:05pm by Bariag
Post Comment

Free account required to post

You must log in or create an account to post messages.